Ask HN: SSH – authorized_keys comment field format (best practices)?
1 comments
The only thing I can add is that if the key was generated by automation then I or the automation tool put the JIRA number or whatever approval system was used for the project so that auditors questions can be answered.
I know about SSH certificates and we use them primarily but we still have systems which use classic pubkeys managed in authorized_keys
From authorized_keys (5)
What I often find is something like this
which makes it hard to find out how to contact that key owner.
So I often use this format:
Currently I am thinking about a more generic format with more info which can be parsed later by Bash, Go or something else.
Something like this:
.
.
- What do you use?
- Are there any best practices?
- Any ideas, comments? (pun intended)